Your privacy isn't a feature — it's the architecture. Every layer of BlackOps is built to protect you.
All data at rest and in transit is encrypted with AES-256-GCM, the same standard used by intelligence agencies worldwide. Authenticated encryption prevents tampering.
Every user and vendor is identified by their PGP public key. No emails, no phone numbers — just cryptographic proof of identity.
All traffic passes through the Tor network by default, with additional I2P fallback routes. Your IP address is never exposed to any server.
Server-side encryption means even database administrators cannot read your data. Keys are derived client-side and never leave your device.
Optional TOTP-based 2FA adds a second layer of protection. Compatible with any authenticator app — no phone number required.
We don't log IP addresses, browser fingerprints, or access patterns. What you do on BlackOps stays between you and your encryption keys.
A step-by-step visualization of how your data is protected from sender to recipient.
Your original message or data
Encrypted with recipient's public key
Wrapped in 3 layers of Tor encryption
Stored as AES-256 ciphertext on server
Only recipient's private key can decrypt
Real-time security statistics from our infrastructure.
Our official PGP public key. Always verify signed messages against this key.
How we strip identifying information from every interaction.
Client connects through Tor hidden service. IP address is stripped at the first relay. Connection metadata is never recorded.
User authenticates via PGP challenge-response. No passwords stored — only the hash of their public key fingerprint.
A unique ephemeral session key is generated using Diffie-Hellman key exchange. Perfect forward secrecy ensures past sessions can't be decrypted.
All user actions are processed in isolated containers with no persistent storage. Memory is securely wiped after each request.
Session tokens expire after 30 minutes. All temporary data is overwritten with random bytes. No forensic traces remain.